Apple patches Summerc0n Java for Mac security hole

Summary:Apple has rushed out a Java for Mac update to fix multiple security vulnerabilities, including a critical flaw discussed three months ago at Summerc0n by researcher Dino Dai Zovi.

Apple has rushed out a Java for Mac update to fix multiple security vulnerabilities, including a critical flaw discussed three months ago at Summerc0n by researcher Dino Dai Zovi.

The Java for Mac update rolls up fixes for extremely critical security holes in Java 1.6.0_20.  The most serious flaws allows an untrusted Java applet to execute arbitrary code outside the Java sandbox. These could be exploited to launch drive-by download attacks.

Apple also fixed two additional remote code exection issues, including one that was publicly released by Dai Zovi in June (see slides - PDF).

Here's Apple's description of the issue:

follow Ryan Naraine on twitter

CVE-2010-1826 -- A command injection issue exists in updateSharingD's handling of Mach RPC messages. A local user may be able to execute arbitrary code with the privileges of another user who runs a Java application. This issue is addressed by implementing a per-user Java shared archive. It only affects the Mac OS X implementation.

A separate memory corruption in Java's handling of applet window bounds could also be exploited via web pages containing a maliciously crafted Java applet tags.   This may lead to an unexpected application termination or arbitrary code execution with the privileges of the current user, Apple warned.

The Java for Mac updates are available for Mac OS X 10.5 and Mac OS X 10.6.

ALSO SEE:

  • Java mega-update plugs 29 critical security holes
  • Microsoft reports 'unprecedented wave' of Java malware exploits
  • Topics: Security, Apple, Hardware, Open Source, Software Development

    About

    Ryan Naraine is a journalist and social media enthusiast specializing in Internet and computer security issues. He is currently security evangelist at Kaspersky Lab, an anti-malware company with operations around the globe. He is taking a leadership role in developing the company's online community initiative around secure content managem... Full Bio

    zdnet_core.socialButton.googleLabel Contact Disclosure

    Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

    Related Stories

    The best of ZDNet, delivered

    You have been successfully signed up. To sign up for more newsletters or to manage your account, visit the Newsletter Subscription Center.
    Subscription failed.